06/04/2018 I ordered a GoPro from Curry's PC World on their website. I made absolutely sure I ticked (or unticked) all boxes to ensure I had opted out of all collection of my data for marketing purposes.
13/04/2018 I get an email from CurrysPCWorldFeedback@maruedr.com asking me for feedback on my shopping experience.
13/04/2018 Sent an email to Curry's PC World DPO explaining that I was unhappy with them sharing my data with a marketing outfit.
16/04/2018 I get an email from Revoo asking me to review my GoPro that I purchased on a specified date from Currys PC World.
16/04/2018 I contact both Maruedr and Curry's PC World continuing to express my displeasure at them being incredibly free and easy with my data and apparently ignoring any email I've sent reporting their own organised breach.
20/04/2018 I get a response from Currys PC World DPO telling me they didn't share my data and that I'd received a phishing email.
20/04/2018 I get another duplicate Revoo email.
24/04/2018 Received an email from Currys explaining that they do share my data with third parties for the purpose of conducting surveys, etc.
30/04/2018 I finally get an email from Maruedr (which, it turns out, is a legit if scummy marketing company) confirming that they received my details from Currys PC World (and they list them as a customer on their own website) and have deleted my data and have notified Curry's to do same and tell me to continuing any further correspondence through Currys.
14/05/2018 Receive an email from Maruedr that they have finished deleting my data.
This is still outstanding with Currys PC World and they haven't addressed my concerns, nor confirmed deletion of non-essential data, nor that they won't share it any more. About to report this to the ICO.
This is how much they care about your privacy.